AI Threat Alert
AI Security Threat Feed
Latest CVEs affecting AI/ML systems, updated continuously. Tracked from NVD, GitHub Advisory, and CISA KEV.
1,140
AI/ML CVEs Tracked
171
Critical
228
New This Week
2
In CISA KEV
Weekly CISO Take + top threats
Get the week's most critical AI security threats delivered every Monday. Free, no spam.
Latest AI Security Threats
Showing 50 of 1140 results Severity CVE ID Summary CVSS EPSS Package Date
HIGH CVE-2025-58757 Monai: Unsafe use of Pickle deserialization may... 8.8 0.6% monai Sep 9 HIGH CVE-2025-58756 MONAI: Unsafe torch usage may lead to arbitrary... 8.8 1.2% monai Sep 9 HIGH CVE-2025-58755 MONAI does not prevent path traversal,... 8.8 0.1% monai Sep 9 HIGH CVE-2025-56265 An arbitrary file upload vulnerability in the... 8.8 — n8n Sep 8 MEDI CVE-2025-58446 xgrammar vulnerable to denial of service by huge... — 0.1% xgrammar Sep 5 HIGH CVE-2025-6984 The langchain-ai/langchain project, specifically... 7.5 2.1% langchain-community Sep 4 MEDI GHSA-q77w-mwjj-7mqx Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-49gj-c84q-6qm9 Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-9w88-8rmg-7g2p Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-fqq6-7vqf-w3fg Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-3gf5-cxq9-w223 Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-j343-8v2j-ff7w Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-m869-42cg-3xwr Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-p9w7-82w4-7q8m Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-xp4f-hrf8-rxw7 Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-4whj-rm5r-c2v8 Picklescan is missing detection when calling... — — picklescan Aug 26 MEDI GHSA-9xph-j2h6-g47v Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-8r4j-24qv-fmq9 Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-cj3c-v495-4xqh Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-7cq8-mj8x-j263 Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-6w4w-5w54-rjvr Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-3vg9-h568-4w9m Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-f54q-57x4-jg88 Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-6vqj-c2q5-j97w Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-x696-vm39-cp64 Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-g344-hcph-8vgg Picklescan has a missing detection when calling... — — picklescan Aug 26 MEDI GHSA-5qwp-399c-mjwf Picklescan has a missing detection when calling... — — picklescan Aug 26 CRIT CVE-2025-55526 n8n-workflows Main Commit ee25413 allows... 9.1 — fastapi Aug 26 HIGH CVE-2025-5302 LlamaIndex affected by a Denial of Service (DOS)... 8.6 0.1% llama-index-core Aug 26 HIGH CVE-2025-57809 XGrammar affected by Denial of Service by... 7.5 0.0% xgrammar Aug 25 HIGH CVE-2025-57760 Langflow is a tool for building and deploying... 8.8 0.0% langflow Aug 25 MEDI GHSA-vv6j-3g6g-2pvj Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-vr7h-p6mm-wpmh Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-h3qp-7fh3-f8h4 Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-f745-w6jp-hpxx Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-f4x7-rfwp-v3xw Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-86cj-95qr-2p4f Picklescan missing detection when calling pytorch... — — picklescan Aug 22 MEDI GHSA-4r9r-ch6f-vxmx Picklescan missing detection when calling pytorch... — — picklescan Aug 22 HIGH CVE-2025-48956 vLLM is an inference and serving engine for large... 7.5 0.4% vllm Aug 21 HIGH CVE-2025-9141 vLLM has remote code execution vulnerability in... 8.8 — vllm Aug 21 MEDI CVE-2025-57749 n8n is a workflow automation platform. Before... 6.5 — n8n Aug 20 MEDI CVE-2025-52478 n8n is a workflow automation platform. From... 5.4 — n8n Aug 19 HIGH CVE-2025-23298 NVIDIA Merlin Transformers4Rec for all platforms... 7.8 — — Aug 13 HIGH GHSA-9gvj-pp9x-gcfr Picklescan has pickle parsing logic flaw that... — — picklescan Aug 12 UNKN CVE-2025-55012 Zed is a multiplayer code editor. Prior to... — — — Aug 11 HIGH CVE-2025-8747 A safe mode bypass vulnerability in the... 7.8 0.0% keras Aug 11 HIGH CVE-2025-54886 skops is a Python library which helps users share... 8.4 0.3% — Aug 8 CRIT CVE-2025-54950 ExecuTorch out-of-bounds access vulnerability 9.8 0.2% executorch Aug 8 CRIT CVE-2025-30405 ExecuTorch integer overflow vulnerability 9.8 0.2% executorch Aug 8 CRIT CVE-2025-54951 ExecuTorch vulnerable to Heap-based Buffer... 9.8 0.2% executorch Aug 8 Need deeper analysis?
Get ATLAS technique mappings, compliance reports (ISO 42001, EU AI Act), breaking alerts, and full CISO analysis with a Pro subscription.
Start 14-Day Free Trial